Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254421	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-0159	2010-04-1 13:50	2010-02-17	Show	GitHub Exploit DB Packet Storm

254422	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-3979	2010-04-1 13:49	2009-12-15	Show	GitHub Exploit DB Packet Storm

254423	4.4	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox におけるダウンロードファイルを置き換えられる脆弱性	CWE-Other その他	CVE-2009-3274	2010-04-1 13:47	2009-09-21	Show	GitHub Exploit DB Packet Storm

254424	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox/SeaMonkey における意図しないファイルをダウンロードさせられる脆弱性	CWE-16 環境設定	CVE-2009-3376	2010-04-1 13:46	2009-10-27	Show	GitHub Exploit DB Packet Storm

254425	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox のブラウザエンジンにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-3380	2010-04-1 13:45	2009-10-27	Show	GitHub Exploit DB Packet Storm

254426	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox の JavaScript エンジンにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-3075	2010-04-1 13:44	2009-09-9	Show	GitHub Exploit DB Packet Storm

254427	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox のブラウザエンジンにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-3072	2010-04-1 13:43	2009-09-9	Show	GitHub Exploit DB Packet Storm

254428	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox における任意の PKCS11 モジュールをインストール/削除させる脆弱性	CWE-Other その他	CVE-2009-3076	2010-04-1 13:42	2009-09-9	Show	GitHub Exploit DB Packet Storm

254429	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox における XUL ツリー要素に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3077	2010-04-1 13:41	2009-09-9	Show	GitHub Exploit DB Packet Storm

254430	5	警告	Mozilla Foundation レッドハット	-	Mozilla Firefox におけるドメイン名の処理に関するサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-2470	2010-04-1 13:40	2009-07-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306891	3.3	LOW Local	apple	macos	A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. A malicious app may be able to change network settings.	NVD-CWE-noinfo	CVE-2024-40792	2024-10-31 01:35	2024-10-29	Show	GitHub Exploit DB Packet Storm

306892	4.3	MEDIUM Network	google	chrome	Inappropriate implementation in FedCM in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)	NVD-CWE-noinfo	CVE-2024-7976	2024-10-31 01:35	2024-08-22	Show	GitHub Exploit DB Packet Storm

306893	7.5	HIGH Network	wpchill	download_monitor	The Download Monitor plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on several REST-API routes related to reporting in versions up to, and including, 4.7…	CWE-862 Missing Authorization	CVE-2022-4972	2024-10-31 01:34	2024-10-16	Show	GitHub Exploit DB Packet Storm

306894	4.9	MEDIUM Network	mayurik	petrol_pump_management	A vulnerability classified as critical was found in SourceCodester Petrol Pump Management Software 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/print.php. The ma…	CWE-89 SQL Injection	CVE-2024-10354	2024-10-31 01:32	2024-10-25	Show	GitHub Exploit DB Packet Storm

306895	7.2	HIGH Network	oretnom23	online_exam_system	A vulnerability classified as critical has been found in SourceCodester Online Exam System 1.0. Affected is an unknown function of the file /admin-dashboard. The manipulation leads to improper access…	NVD-CWE-noinfo	CVE-2024-10353	2024-10-31 01:21	2024-10-25	Show	GitHub Exploit DB Packet Storm

306896	6.1	MEDIUM Network	archerirm	archer	Reflected XSS was discovered in an iView List Archer Platform UX page in Archer Platform 6.x before version 2024.09. A remote unauthenticated attacker could potentially exploit this by tricking a vic…	CWE-79 Cross-site Scripting	CVE-2024-49210	2024-10-31 01:13	2024-10-23	Show	GitHub Exploit DB Packet Storm

306897	6.1	MEDIUM Network	archerirm	archer	Reflected XSS was discovered in a Dashboard Listing Archer Platform UX page in Archer Platform 6.x before version 2024.08. A remote unauthenticated attacker could potentially exploit this by tricking…	CWE-79 Cross-site Scripting	CVE-2024-49211	2024-10-31 01:08	2024-10-23	Show	GitHub Exploit DB Packet Storm

306898	5.4	MEDIUM Network	wordpress	wordpress	WordPress Core, in versions up to 6.0.2, is vulnerable to Authenticated Stored Cross-Site Scripting that can be exploited by users with access to the WordPress post and page editor, typically consist…	CWE-79 Cross-site Scripting	CVE-2022-4973	2024-10-31 00:58	2024-10-16	Show	GitHub Exploit DB Packet Storm

306899	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: ublk: don't allow user copy for unprivileged device UBLK_F_USER_COPY requires userspace to call write() on ublk char device for f…	NVD-CWE-noinfo	CVE-2024-50080	2024-10-31 00:54	2024-10-29	Show	GitHub Exploit DB Packet Storm

306900	9.1	CRITICAL Network	siemens	intermesh_7177_hybrid_2.0_subscriber intermesh_7707_fire_subscriber_firmware	A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2.12), InterMesh 7707 Fire Subscriber (All versions < V7.2.12 only if the IP interface is enabled (which…	NVD-CWE-noinfo	CVE-2024-47903	2024-10-31 00:54	2024-10-24	Show	GitHub Exploit DB Packet Storm